Effective Date: September 2025
Last Updated: September 2025
MedPlainly (“we,” “our,” or “us”) respects your privacy. This Privacy Policy explains how we collect, use, and protect your personal information when you visit our website (medplainly.com), read our blog, or subscribe to our free daily health newsletter.
By using our website or subscribing to our newsletter, you agree to this Privacy Policy.
1. Data Controller
The data controller responsible for your personal data is:
[Your Company Name] SRL
Registered in Romania
Company Registration No.: [●]
Registered Office: [● Address in Romania]
Email: privacy@medplainly.com
As the data controller, we determine the purposes and means of processing your personal data in line with the General Data Protection Regulation (EU) 2016/679 (GDPR) and Romanian data protection law.
2. Information We Collect
We collect only the information necessary to deliver our Services.
a) Information You Provide Directly
- Email address – when you subscribe to our newsletter.
- Contact details – when you use our contact form or email us.
- Preferences – if you choose to adjust your subscription settings.
b) Information Collected Automatically
- Log data – browser type, device type, IP address, pages visited, time of access.
- Cookies – small files stored on your device to remember preferences, analyze traffic, and improve performance.
3. How We Use Your Information
We use your information to:
- Deliver the daily MedPlainly health newsletter.
- Respond to your questions or feedback.
- Improve our website and content.
- Provide occasional updates related to our Services.
- Comply with legal and regulatory requirements.
We never use your personal data to make automated decisions that could significantly affect you.
4. Sharing of Information
We do not sell, rent, or trade your personal information.
We may share information only in these cases:
- Service providers – companies that help us send emails, host our site, or provide analytics.
- Legal obligations – if required by law, court order, or regulatory authority.
- Business transfers – if MedPlainly is ever merged, acquired, or sold, your data may transfer as part of the transaction.
All service providers we work with are required to protect your data and comply with GDPR.
5. Cookies and Tracking
We use cookies and similar technologies to:
- Remember your preferences.
- Measure website traffic and engagement.
- Improve the performance of our site and newsletter.
You can control cookies through your browser settings. Disabling cookies may limit some features of our site.
6. Data Retention
- We keep your email address until you unsubscribe.
- We keep contact form messages only as long as needed to respond, unless the law requires otherwise.
- We review retention practices regularly to ensure we do not keep data longer than necessary.
7. Your Rights under GDPR
As a data subject, you have the following rights:
- Access – request a copy of the personal data we hold.
- Correction – ask us to update or correct inaccurate data.
- Erasure – request deletion of your personal data (“right to be forgotten”).
- Restriction – limit processing of your data in certain circumstances.
- Portability – request transfer of your data to another provider.
- Objection – object to processing, e.g. for marketing.
- Withdraw consent – unsubscribe anytime with one click.
To exercise these rights, contact us at privacy@medplainly.com. We will respond within 30 days as required by GDPR.
8. Security
We use reasonable technical and organizational measures to protect your data, including:
- Secure servers
- Encryption where appropriate
- Access limited to authorised staff
However, no system is 100% secure, and we cannot guarantee absolute protection.
9. Children’s Privacy
MedPlainly is intended for adults aged 18 and over. We do not knowingly collect information from children. If we become aware that we have collected personal data from a child, we will delete it immediately.
10. International Users
If you access MedPlainly from outside Romania, your data may be transferred and stored in the European Union or the United States. By using our Services, you consent to such transfers.
11. Third-Party Links
Our website and newsletter may contain links to external sites (e.g., PubMed, JAMA, other medical journals). We are not responsible for the privacy practices or content of those websites.
12. Legal Basis for Processing
Under GDPR, we rely on these legal bases to process your data:
- Consent – when you subscribe to the newsletter or accept cookies.
- Legitimate interests – to deliver our content, improve our services, and ensure security.
- Legal obligations – to comply with Romanian and EU laws.
13. Changes to This Policy
We may update this Privacy Policy occasionally. If changes are significant, we will notify subscribers by email or update the “Last Updated” date at the top.
14. Contact Us
If you have any questions or concerns about this Privacy Policy, contact us here.